Vulnerabilidades en opensourcepos
9 resultadosCVE-2026-8802MEDIUMopensourcepos Open Source Point of Sale Items.php getPicThumb path traversalEPSS 0.4%CVE-2026-32888HIGHOpen Source Point of Sale is Vulnerable to SQL Injection Through its Item Search FunctionalityEPSS 0.3%CVE-2025-68147HIGHopensourcepos has a Cross-site Scripting vulnerabilityEPSS 0.3%CVE-2026-33730MEDIUMOpen Source Point of Sale has an IDOR in Password Change (Home)EPSS 0.3%CVE-2025-68434HIGHopensourcepos has Cross-Site Request Forgery vulnerability that leads to Unauthorized Administrator CreationEPSS 0.2%CVE-2026-8803MEDIUMopensourcepos Open Source Point of Sale Employee Login Employee.php login weak hashEPSS 0.2%CVE-2025-68658MEDIUMOpen Source Point of Sale (opensourcepos) Stored XSS in Configuration (Information) – Company Name fieldEPSS 0.2%CVE-2026-32712MEDIUMOpen Source Point of Sale has Stored XSS in Customer Name (Sales)EPSS 0.2%CVE-2026-39380MEDIUMOpen Source Point of Sale has Stored XSS in Stock Location (Configuration)EPSS 0.2%